Warning: Frey is Alpha. Use it for new projects and goofing around, leave it for existing ones. Frey aims to be an all-in-one tool for developers and sysadmins to bring their app to production.
Frey can:
infra and operating systems (AWS, Google, Digital Ocean, etc)install software packages (Nginx, MySQL, etc)setup these packagesdeploy your app (via Rsync, S3, Git pull, etc)restart it (via Rsync, S3, Git pull, etc)Frey will try to complete all of these steps, following along a 'chain of commands'. You're free to exclude commands, run a few, or just one. Chainable commands are indicated by 
:
As you can see, Frey additionally provides commands to:
backuprestoreremote commands on your platformSo how does Frey know what to do? All of the actions are orchestrated from a single source of truth, a declarative Freyfile.toml, written in TOML, and kept under the source control of your existing project. Preferably in its own directory, like ./infra.
Here's an example launching two web servers and a database server on Digital Ocean.
If you have a huge project and your Freyfile size is becoming an issue, Frey will happilly look for any other *.toml files in the same directory as you can see in this example where we set up a DynamoDB server on AWS using 4 different toml files.
Frey prefers using environment variables for secrets such as the keys to your AWS account. Frey will automatically make any environment key that starts with FREY_ available to Terraform so you can use them directly as e.g.:
[infra.provider.aws]
access_key = "${var.FREY_AWS_ACCESS_KEY}"
secret_key = "${var.FREY_AWS_SECRET_KEY}"
region = "us-east-1"
In Ansible, you could use them like so:
[[install.playbooks.tasks]]
name = "Showcase we can access FREY_ environment variables"
command = "echo {{lookup('env', 'FREY_SHOULD_BE_AS_VAR_IN_ANSIBLE')}}"
It's good practice to put the keys needed for you app in an env.sh, and keep that out of Git.
For setting up remote connections, Frey generates private and public SSH keys if they don't exist yet, and makes sure the created servers are accessible using those. If you set the magic FREY_ENCRYPTION_SECRET environment variable to a long random secret, Frey will also generate an encrypted version of your private SSH key so that you'd end up with three generated files:
./ssh/frey-myapp.pem
./ssh/frey-myapp.pem.cast5
./ssh/frey-myapp.pub
To change the directory Frey looks for SSH keys for you project from ~/.ssh, you can use the global.ssh.key_dir configuration value. That you can either set via --cfg-var or directly in your Freyfile:
[global.ssh]
key_dir = "."
If frey-myapp.pem.cast5 exists as well as a FREY_ENCRYPTION_SECRET variable in the environment, Frey automatically reconstructs the frey-myapp.pem, and deletes it when the Frey process exits.
This allows you to for instance commit the encrypted private key to your Git repository, and ignore the .pem file, opening up the possibility of letting a semi-untrusted CI like Travis manage deploys for you. As an example, Travis could keep the encryption secret for you via:
gem install travis
travis encrypt --add env.global "FREY_ENCRYPTION_SECRET=${FREY_ENCRYPTION_SECRET}"
You could then set Travis to run frey deploy whenever there's non-PR push to the master branch. In .travis.yml add something like:
after_success:
- if [ "${TRAVIS_PULL_REQUEST}" == "false" ] && [ "${TRAVIS_BRANCH}" == "master" ]; then frey deploy; else echo "Skipping deploy for non-master/prs"; fi
When frey starts, it will find the .cast5 file since that was committed to Git, it won't find the .pem file but it will recreate that with using the FREY_ENCRYPTION_SECRET, which was in turn encrypted by Travis.
To run all the commands the belong to the chain (), just type frey
cd ~/code/myapp/infra
frey
This might not always be what you want.
You can step into the 'chain of commands' at any point. For so you'd type frey deploy, Frey would deploy your app, restart it, and show you the status.
You can also step out of the chain. If you only want a deploy without a restart, you can use --bail:
cd ~/code/myapp/infra
frey deploy --bail
You can also define a range, via --bail-after:
cd ~/code/myapp/infra
frey --bail-after plan
Making Frey execute all the steps, including plan, but then abort.
The Freyfile and its *.toml siblings, along with environment variables for secrets, are the main way to configure infrastructure. Additionally, it may make sense to override configuration at runtime. This can be achieved via the --cfg-var command-line argument. For instance, your Freyfile could hold:
[infra.resource.digitalocean_droplet.myapp-web]
image = "ubuntu-14-04-x64"
name = "web-${count.index}"
region = "nyc2"
size = "512mb"
ssh_keys = [ "${digitalocean_ssh_key.myapp-sshkey.id}" ]
count = "${var.web_count}"
Which could be overridden via:
frey --cfg-var="infra.resource.digitalocean_droplet.myapp-web.count=10"
Supply multiple --cfg-var arguments if you want to override multiple configuration values.
Alternatively you could use use a simple templating language that Frey provides to reference to values inside your Freyfile. In this example we reference to Frey-provided ssh keys. Notice that we prefix with config. here, as you can also use magic prefixes such as self. and parent..
[infra.resource.digitalocean_droplet.myapp-web.connection]
key_file = "{{{config.global.ssh.privatekey_file}}}"
user = "{{{config.global.ssh.user}}}"
The full list of config variables that you can reference is constituted by what's in your Freyfile, as well as a few defaults that Frey provides for convenience, which are listed here.
Frey would like to be installed globally for convenience:
npm install --global frey
But it will then choose a locally installed version if you have it available. This is great to pin a Frey version to an infra project. This way, you will know nothing that works now, can break in the future. So in addition to the global install, we recommend a local install in your project with exact version pinning:
cd ~/code/myapp
npm install --save --exact frey
A fixed version of Frey, installs fixed local versions of its dependencies (such as Ansible and Terraform) in local directories as well, all to keep chances of conflict slim, and chances of things working five years from now, optimal. More on this later.
The changelog and todo list and can be found here
The changelog and todo list and can be found here
There's an automatic converter that's not prefect but can save you 99% of the work if you want to convert your existing config files to a Freyfile.
Frey might support running playbook .yaml and .tf files natively in the future, you could wait for that, too. No promises though.
Beyond the instructions it's just a matter of moving the current state files that you have to Frey recognized places, and you're good to go.
Frey is heavily relying on existing wheels. Frey is a convenience wrapper: a relatively small project, standing on the shoulders of two Giants: Terraform and Ansible. I found these two make great companions for setting up infrastructure and software, although they weren't necessarily meant to be. What I've learned from marrying the two, I did not want to put into documentation. I wanted to codify it into a project of it's own, so that you could just npm install --save frey, and that's that.
We recommend saving the Freyfile in an infra directory in your app. Frey will generate some files that like to be in the same directory as this file. Any file named Frey-residu* can be git ignored. The rest should be checked in.
Frey automatically commits changes to infra state.
Keeping infra the infra definition of a project together with the app itself is convenient and allows both to move at the same pace. If you revert to 2 years ago, you can also inspect the matching infra from that time.
Of course, this is not right for every project, and you're free to create a dedicated infra-myapp Git repository and keep your Freyfile directly in its root.
Terraform is our opinion the best infrastructure automation tool, but without Ansible / Chef / Puppet, it's mostly relying on shell scripts to set up servers. Hashicorp has many other tools to compensate, most noteworthy Otto, for which there is a separate comparison.
While it's true that some of these tools can launch infrastructure, they're not the right tool it. The main reason is that while they're okay-ish at managing state on a server, they weren't built to manage state 'outside' of it, what Terraform really shines in.
Seeing as Otto uses Terraform for infra orchestration and also installs software on it, there's a big conceptual overlap.
Where the projects differ is that Otto aims to be zero config, and Frey aims to be minimal yet complete config. Every component needs to be described, and saved under Git. This approach provides more control and flexibility at the tradeoff of it being more work to describe all your pieces. Wether this trade-off is acceptable depends on the project.
Frey does not offer setting up local environments yet, but this should be easy enough to add (as we can make local connections already) and is on the roadmap.
MIT
FAQs
Automated infrastructure CLI
The npm package frey receives a total of 0 weekly downloads. As such, frey popularity was classified as not popular.
We found that frey demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Research
Socket researchers have discovered malicious npm packages targeting crypto developers, stealing credentials and wallet data using spyware delivered through typosquats of popular cryptographic libraries.
Security News
Socket's package search now displays weekly downloads for npm packages, helping developers quickly assess popularity and make more informed decisions.
Security News
A Stanford study reveals 9.5% of engineers contribute almost nothing, costing tech $90B annually, with remote work fueling the rise of "ghost engineers."